Zero Day Initiative

TippingPoint Zero Day Initiative

ZDI STATISTICS...

# Created Cases:	1,360
# Researchers:	826
Avg. Verification Time:	16 days

CA BrightStor ARCserve Backup caloggerd Arbitrary File Writing Vulnerability

ZDI-08-027: May 19th, 2008

CVE ID

Affected Vendors

Computer Associates

Affected Products

BrightStor ARCserve Server

Vulnerability Details

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Computer Associates ARCserve Backup. Authentication is not required exploit this vulnerability.

The specific flaw exists within the caloggerd log daemon during the processing of log messages that contain directory traversal modifiers. A lack of sanity checking on the provided path allows attackers to append arbitrary data to a file of their choosing and can easily result in a full system compromise.

Vendor Response

Computer Associates has issued an update to correct this vulnerability. More details can be found at:

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=176798

Disclosure Timeline

Credit

This vulnerability was discovered by:

Published Advisories

ZDI-08-053: Symantec

published 2008-08-14

ZDI-08-052: OpenLDAP Foundation

published 2008-08-14

ZDI-08-051: Microsoft

published 2008-08-12

ZDI-08-050: Microsoft

published 2008-08-12

ZDI-08-049: Microsoft

published 2008-08-12

Upcoming Advisories

RealNetworks

reported 2008-08-19, 7 days ago

reported 2008-08-19, 7 days ago

reported 2008-08-19, 7 days ago

reported 2008-07-15, 42 days ago

Sun Microsystems

reported 2008-07-14, 43 days ago

Recent Press

Where on earth are these Microsoft patches?

published 2008-08-14, ZDNet

Apple releases new Mac OS X 10.5.5

published 2008-07-31, ITWire

High-priority patch fixes critical vulns in RealPlayer

published 2008-07-25, The Register

Firefox 3.0.1 Fixes 'Carpet Bombing' Issue

published 2008-07-17, SlashDot

iPhone and iPod Touch updated with security patches

published 2008-07-11, CNET